$ rpki-client -vvf repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135362e302f32332d3233203d3e20313432333630.roa File: 3130332e3134372e3135362e302f32332d3233203d3e20313432333630.roa (raw, json) Hash identifier: fmJerLM1N0ksnlpj4ELJPPRM1ugJcJpRpXiGiX3LpPI= Subject key identifier: 0B:EB:55:38:CD:AA:C0:2A:13:8E:0F:F6:82:88:7F:66:0C:C0:B7:04 Certificate issuer: /CN=0D3926ADFB47314F1E7D5B92769131D429FC13A9 Certificate serial: 2227A533D0D6D8BC1ABB687DFBEB4DCCD7EC91C6 Authority key identifier: 0D:39:26:AD:FB:47:31:4F:1E:7D:5B:92:76:91:31:D4:29:FC:13:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D3926ADFB47314F1E7D5B92769131D429FC13A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135362e302f32332d3233203d3e20313432333630.roa Signing time: Wed 30 Jul 2025 02:01:52 +0000 ROA not before: Wed 30 Jul 2025 01:56:52 +0000 ROA not after: Wed 29 Jul 2026 02:01:52 +0000 asID: 142360 IP address blocks: 103.147.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/0D3926ADFB47314F1E7D5B92769131D429FC13A9.crl rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/0D3926ADFB47314F1E7D5B92769131D429FC13A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D3926ADFB47314F1E7D5B92769131D429FC13A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 00:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:27:a5:33:d0:d6:d8:bc:1a:bb:68:7d:fb:eb:4d:cc:d7:ec:91:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D3926ADFB47314F1E7D5B92769131D429FC13A9 Validity Not Before: Jul 30 01:56:52 2025 GMT Not After : Jul 29 02:01:52 2026 GMT Subject: CN=0BEB5538CDAAC02A138E0FF682887F660CC0B704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:51:b0:9d:c2:b5:3b:b6:7d:79:29:c4:98:67: 48:c2:c1:22:26:85:c2:43:da:00:46:bb:64:34:75: ba:88:6e:14:53:80:ce:5b:6e:43:2a:5f:e5:62:04: 7e:1c:80:a4:91:00:41:89:a5:19:c3:08:aa:42:5e: df:20:8a:63:28:99:13:54:ac:ca:b7:ab:a4:d4:07: 35:d8:fa:bd:00:b1:8c:d6:4b:ba:49:e2:42:2e:7d: cd:b7:27:a9:f0:c5:66:12:4b:de:a7:72:58:76:dd: 95:57:f3:3e:5f:02:02:cf:21:e9:04:45:36:6b:a4: 47:55:98:01:71:61:da:10:14:ff:43:d2:31:af:e4: 6a:86:18:cb:d0:89:c5:de:ea:75:92:56:f8:bd:0d: 11:c4:22:7f:40:74:d7:b1:d4:d6:24:25:a1:fb:f9: aa:0e:64:97:82:ab:b6:7f:7f:89:fc:14:bb:c9:33: 69:64:44:6e:cd:ab:c6:8a:54:cb:87:8a:c8:bf:01: e0:23:b5:9d:58:50:85:9b:0a:c9:4c:51:ee:6e:87: 8e:59:6e:45:7e:9a:f4:95:b5:aa:c8:b9:58:6e:cc: ce:3f:48:05:0a:a5:a9:07:20:42:1e:e7:35:77:c4: 4a:1c:a2:a8:c4:ac:26:fe:8d:8f:68:4c:75:59:a1: e8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EB:55:38:CD:AA:C0:2A:13:8E:0F:F6:82:88:7F:66:0C:C0:B7:04 X509v3 Authority Key Identifier: keyid:0D:39:26:AD:FB:47:31:4F:1E:7D:5B:92:76:91:31:D4:29:FC:13:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/0D3926ADFB47314F1E7D5B92769131D429FC13A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D3926ADFB47314F1E7D5B92769131D429FC13A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135362e302f32332d3233203d3e20313432333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.156.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:da:18:cf:59:51:bf:cb:6f:ab:69:69:f1:cd:80:1f:99:ac: 62:5e:89:fb:25:20:81:0c:f6:69:ce:d5:14:cc:2a:47:68:aa: a2:38:a8:1b:ea:2b:bc:44:1c:ea:fb:05:37:8d:dc:1c:20:6a: 9f:90:bd:1a:d8:f7:98:c7:c5:13:f3:97:89:f0:a3:53:b5:e9: 25:a1:72:3b:d8:ce:f6:fc:d9:58:30:6b:9c:4e:1a:94:28:56: 82:84:6e:64:45:48:6e:f8:4e:5f:05:37:ad:ed:c5:dd:91:26: 93:c9:7d:32:3b:cd:40:40:29:9a:cf:c5:73:cf:1f:3d:85:71: f1:95:99:19:ef:20:46:48:0e:06:07:72:a4:2c:13:bc:01:6e: f6:06:d7:82:b4:58:e2:2c:54:c0:8c:e8:02:a8:dc:6f:6b:42: 62:46:f5:5a:c8:e1:58:9d:a7:4f:5c:fc:e5:ff:9f:90:82:e0: 31:f1:51:ac:4e:81:00:e2:3b:9b:26:c6:44:33:6c:4f:5e:27: a8:99:ca:82:33:72:ba:3c:de:cf:f1:fb:4a:d6:e1:1e:0a:f6: 73:68:23:2f:b8:9d:a0:1b:cf:7e:80:ee:79:3c:67:e4:c5:47: b3:0e:57:e2:59:ed:10:46:7d:39:3a:54:86:1e:13:d0:4e:f4: 13:6c:5b:21 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIielM9DW2Lwau2h9++tNzNfskcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQzOTI2QURGQjQ3MzE0RjFFN0Q1QjkyNzY5MTMxRDQy OUZDMTNBOTAeFw0yNTA3MzAwMTU2NTJaFw0yNjA3MjkwMjAxNTJaMDMxMTAvBgNV BAMTKDBCRUI1NTM4Q0RBQUMwMkExMzhFMEZGNjgyODg3RjY2MENDMEI3MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6UbCdwrU7tn15KcSYZ0jCwSIm hcJD2gBGu2Q0dbqIbhRTgM5bbkMqX+ViBH4cgKSRAEGJpRnDCKpCXt8gimMomRNU rMq3q6TUBzXY+r0AsYzWS7pJ4kIufc23J6nwxWYSS96nclh23ZVX8z5fAgLPIekE RTZrpEdVmAFxYdoQFP9D0jGv5GqGGMvQicXe6nWSVvi9DRHEIn9AdNex1NYkJaH7 +aoOZJeCq7Z/f4n8FLvJM2lkRG7Nq8aKVMuHisi/AeAjtZ1YUIWbCslMUe5uh45Z bkV+mvSVtarIuVhuzM4/SAUKpakHIEIe5zV3xEocoqjErCb+jY9oTHVZoegjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUC+tVOM2qwCoTjg/2goh/ZgzAtwQwHwYDVR0j BBgwFoAUDTkmrftHMU8efVuSdpEx1Cn8E6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmRhYTk1Zi0yZjU5LTQzOWEtODM0Zi1hNzIxYzM3MmE3NGMvMC8wRDM5MjZBREZC NDczMTRGMUU3RDVCOTI3NjkxMzFENDI5RkMxM0E5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQzOTI2QURGQjQ3MzE0RjFFN0Q1QjkyNzY5MTMxRDQyOUZD MTNBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyZGFhOTVmLTJmNTktNDM5YS04 MzRmLWE3MjFjMzcyYTc0Yy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM1MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzM2MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk5wwDQYJ KoZIhvcNAQELBQADggEBAI7aGM9ZUb/Lb6tpafHNgB+ZrGJeifslIIEM9mnO1RTM KkdoqqI4qBvqK7xEHOr7BTeN3Bwgap+QvRrY95jHxRPzl4nwo1O16SWhcjvYzvb8 2Vgwa5xOGpQoVoKEbmRFSG74Tl8FN63txd2RJpPJfTI7zUBAKZrPxXPPHz2FcfGV mRnvIEZIDgYHcqQsE7wBbvYG14K0WOIsVMCM6AKo3G9rQmJG9VrI4Vidp09c/OX/ n5CC4DHxUaxOgQDiO5smxkQzbE9eJ6iZyoIzcro83s/x+0rW4R4K9nNoIy+4naAb z36A7nk8Z+TFR7MOV+JZ7RBGfTk6VIYeE9BO9BNsWyE= -----END CERTIFICATE-----Generated at Thu Aug 7 20:24:38 2025 by rpki-client